JMule project forum
http://forum.jmule.org/

Secure Identification in jmule
http://forum.jmule.org/viewtopic.php?f=6&t=697
Page 1 of 1

Author:  sebastian1989 [ Sat Mar 13, 2010 6:02 pm ]
Post subject:  Secure Identification in jmule

Hi everyone,
I would be interested to know if jmule implements secure identification, and if that's the case, in which classes can I find the relative source code. I'm a computer science student and I'm writing a thesis on security and the secure identification would be a perfect example of implementation of the RSA protocol.

thank you in advance

Author:  binary256 [ Sat Mar 13, 2010 6:31 pm ]
Post subject:  Re: Secure Identification in jmule

We reused some code from Bouncy Castle project(http://www.bouncycastle.org/), BC code is located in org.jmule.core.bccrypto package.
Security identification is implemented in PeerManagerImpl(some code in PeerCredit and ClientsMet). Key generation is implemented in ConfigurationManagerImp.genSecurityKeys().

Currently this code is available in CVS only.

Author:  sebastian1989 [ Sat Mar 13, 2010 8:07 pm ]
Post subject:  Re: Secure Identification in jmule

Thank you very much!

Author:  sebastian1989 [ Wed Mar 17, 2010 4:35 pm ]
Post subject:  Re: Secure Identification in jmule

I've studied the code and I have a question: why do you use bouncy castle to implement secure identification? you could also use classes from java.security to generate the private and public key-pair for the RSA encryption method. Am I wrong?

Author:  binary256 [ Wed Mar 17, 2010 6:49 pm ]
Post subject:  Re: Secure Identification in jmule

JCE can use keys with size at least 512 bits, secure identification is based on RSA keys with 384 bits length.

Author:  sebastian1989 [ Wed Mar 17, 2010 8:26 pm ]
Post subject:  Re: Secure Identification in jmule

I made some jUnit tests and it's actually as you say, the minimum key size JCE can handle is 512 bit. I'll see BC's code to see how it generates the 384 bit key.
Thanks a lot for your help.

Page 1 of 1 All times are UTC
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
http://www.phpbb.com/